CVE-2022-3970 — Integer Overflow to Buffer Overflow in Libtiff

CWE-189 CWE-680 — Integer Overflow to Buffer Overflow13 documents9 sources

Severity

8.8HIGHNVD

CNA6.3OSV6.5

EPSS

0.1%

top 73.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Ipados Apple Iphone OS Apple Macos +3 more

Timeline

PublishedNov 13

Latest updateJul 24

Description

A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 227500897dfb07fb7d27f7aa570050e62617e3be. It is recommended to apply a patch to fix this issue. The identifier VDB-213549 was assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages5 packages

▶NVDlibtiff/libtiff< 4.5.0

▶NVDapple/macos< 13.5

▶NVDapple/ipados< 16.6

▶NVDapple/safari< 16.5.1

▶NVDapple/iphone_os< 16.6

Also affects: Debian Linux 10.0

Patches

Patch: gitlab.com ↗Patch: gitlab.com ↗

🔴Vulnerability Details

OSV

tiff vulnerabilities↗2023-02-02

▶

OSV

CVE-2022-3970: A vulnerability was found in LibTIFF↗2022-11-13

▶

CVEList

LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow↗2022-11-13

▶

GHSA

GHSA-44v9-23w3-fv66: A vulnerability was found in LibTIFF↗2022-11-13

▶

📋Vendor Advisories

Apple

CVE-2022-3970: macOS Ventura 13.5↗2023-07-24

▶

Apple

CVE-2022-3970: iOS 16.6 and iPadOS 16.6↗2023-07-24

▶

Ubuntu

LibTIFF vulnerabilities↗2023-02-02

▶

Ubuntu

LibTIFF vulnerability↗2022-12-01

▶

Ubuntu

LibTIFF vulnerability↗2022-11-24

▶